SENIOR APPLICATION SECURITY ENGINEER

Company Description QAD is building a world-class SaaS company, and we are growing.
We are looking for talented individuals who want to join us on our mission to help solve relevant real-world problems in manufacturing and the supply chain.
We are a virtual first company and your primary work experience will be virtual / working from your home.
Occasional travel to a physical office may be required to enhance working relationships, collaboration, design, strategy and alignment.
Job Description QAD is seeking a Senior Application Security Engineer.
As an Application Security Engineer, you will play a critical role in ensuring the security and integrity of our organization's applications and software systems.
You will be responsible for identifying and mitigating security vulnerabilities, conducting risk assessments, and implementing robust security measures to safeguard our applications against potential threats.
This role requires a deep understanding of application security best practices, emerging threats, and the ability to work collaboratively with development teams to integrate security seamlessly into the software development lifecycle.
What you’ll do.
Conduct comprehensive security assessments and penetration testing of applications to identify vulnerabilities and risks.
Collaborate with development teams to review code, offer guidance on secure coding practices, and assist in remediation efforts.
Work with software architects to integrate security into application design and recommend security controls.
Develop and maintain threat models for applications, aiding in the creation of mitigation strategies.
Educate development teams on secure coding practices and stay informed about evolving security threats and best practices.
Assist in investigating and responding to application-related security incidents, collaborating with the incident response team.
Create and maintain documentation on application security policies, procedures, and guidelines.
Generate reports on security assessments and findings.
Coordinate with cross-functional teams to integrate security into the software development lifecycle.
Collaborate with external security organizations and researchers to stay updated on emerging threats and vulnerabilities.
Define secure application architectures for SaaS applications.
Develop automated processes for SCA, DAST, and SAST.
Integrate security testing tools into CI/CD pipelines for continuous security assessments.
Qualifications What you'll need.
A bachelor's degree in a relevant field such as Computer Science, Information Technology, Cybersecurity, or a related discipline 3-5 years of experience in network security with a strong focus on AWS, GCP, and cloud architectures.
Excellent written and verbal  communication skills  in  English.
Senior level programming and scripting skills (Java, Python, TypeScript) Proven experience in application security, with a strong understanding of secure coding practices.
In-depth knowledge of common application security vulnerabilities (OWASP Top 10) and the ability to remediate them.
Experience with tools and techniques for vulnerability assessment, penetration testing, and code review (Veracode, Snyk, SonarQube).
Familiarity with security standards, frameworks, and compliance requirements (SAML, OIDC, OAuth, Spring Security).
Excellent communication and collaboration skills.
Relevant certifications such as CISSP, CSSLP, or CEH are a plus.
Additional Information Your health and well being are important to us at QAD.
We provide programs that help you strike a healthy work-life balance.
Opportunity to join a growing business, launching into its next phase of expansion and transformation.
Collaborative culture of smart and hard-working people who support one another to get the job done.
An atmosphere of growth and opportunity, where idea-sharing is always prioritized over level or hierarchy.
Compensation packages based on experience and desired skill set #LI-GW1 About QAD.
QAD Inc.
is a leading provider of adaptive, cloud-based enterprise software and services for global manufacturing companies.
Global manufacturers face ever-increasing disruption caused by technology-driven innovation and changing consumer preferences.
In order to survive and thrive, manufacturers must be able to innovate and change business models at unprecedented rates of speed.
QAD calls these companies Adaptive Manufacturing Enterprises.
QAD solutions help customers in the automotive, life sciences, packaging, consumer products, food and beverage, high tech and industrial manufacturing industries rapidly adapt to change and innovate for competitive advantage.
QAD is committed to ensuring that every employee feels they work in an environment that values their contributions, respects their unique perspectives and provides opportunities for growth regardless of background.
QAD’s DEI program is driving higher levels of diversity, equity and inclusion so that employees can bring their whole self to work.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.
#LI-Remote I'm interested I'm interested Privacy Policy